Performs all procedures necessary to ensure the security of information system (IS) assets, and protect the data contained within or processed through, from intentional or inadvertent access or destruction. SPECIFIC DUTIES & RESPONSIBILITIES:Creates, Submits, and Validates Assess & Authorize (A&A) packages in accordance with DIACAP/RMF (DoDI 8510.01)Creates, Submits, and Validates Platform IT (PIT) Assess & Authorize (A&A) packages in accordance with NAVSEAINST 9400.2Maintains compliance with Federal, DoD and DoN Cybersecurity policies. Incumbent utilizes extensive knowledge of all areas of cybersecurity to establish operating standards and procedures for the Cybersecurity Program.Reviews risk analysis and accreditation documentation for timeliness, completeness and accuracy, and ensures that all necessary materials are submitted for review. Conducts threat and vulnerability analysis to assess and determine effective countermeasures or mitigations that minimize risks and ensure the IS is operational and secure. PRINCIPAL DUTIES/RESPONSIBILITIES:Assists with implementation of counter-measures or mitigating controls for afloat and land-based environments.Ensures the integrity and protection of tactical/RDT&E networks, systems, and applications by technical enforcement of organizational security policies, through monitoring of vulnerability scanning devices.Performs periodic and on-demand system audits and vulnerability assessments to determine compliance.Prepares computer incident reports, which include analysis methodology and results.Provide cybersecurity technical and administrative support for command assessments and inspections.Provides guidance and work leadership to less-experienced technical staff members, and may have supervisory responsibilities.Maintains current knowledge of relevant technology as assigned.Provide cybersecurity engineering and maintenance in support of the installation and validation ship control systems, components, and methodologies. Assists Software Lead Engineers (SLE) in developing alteration packages to include Ship Change Documents (SCDs), engineering change proposals (ECPs), and ship alterations (SHIPALTs).
Education
EDUCATION AND EXPERIENCE REQUIREMENTS:Bachelor’s Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience.5-8 years of related experience in a cybersecurity-related expertise.Minimum Required Certifications: Certification Authorization Professional (CAP), Security+ Continuing Education (CE), Industry Operating System (OS) certification [e.g. Microsoft Technology Associate (MTA), (Microsoft Certified Solutions Associate (MCSA), or Red Hat Certified Engineer (RHCE)].Preferred Certifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), GIAC Security Leadership Certificate (GSLC), Fully Qualified Navy Validator (FQNV), CompTIA Advanced Security Practitioner (CASP)
Qualifications
DESIRED SKILLS AND ABILITIES:Advanced knowledge of cyber security administration principles, methods, and techniques.Knowledge of DoDI 8500.2 Information Assurance Control (IAC) and NIST 800-53 Security Control implementation and validation, from a systems engineering perspective, as applied to DoD IS.Knowledge of Operating System hardening and remediation IAW the DISA Security Technical Implementation Guides (STIGs).Experience with Assured Compliance Assessment Solution (ACAS) (Nessus), SCAP Compliance Checker (SCC). and the DISA STIG Viewer.Familiarity with Enterprise Mission Assurance Support Service (eMASS) and associated business rules for completing C&A/A&A packages.Experience with Microsoft Windows and UNIX (Linux) operating systems.Knowledge of work planning and resource estimation techniques sufficient to develop milestones and estimate completion dates.Experience with MS Office applications including Word, Excel, PowerPoint, and Visio.WORKING CONDITIONS:The work is typically performed in an office environment and at external client site locations, which requires proper safety precautions; work may require some physical effort in the handling of light materials, boxes or equipment. Minimal travel is expected (10-15% annually) As a trusted systems integrator for more than 50 years, General Dynamics Information Technology provides information technology (IT), systems engineering, professional services and simulation and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors.With approximately 32,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services.GDIT is an Equal Opportunity/Affirmative Action Employer - Minorities/Females/Protected Veterans/Individuals with Disabilities.